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DETAILED ACTION 

1 . in view of the Appeal Brief fiied on 1 2-4-2008, PROSECUTION IS HEREBY 
REOPENED. A new ground of rejection is set forth below. 

To avoid abandonment of the application, appellant must exercise one of the 
following two options: 

(1 ) file a reply under 37 CFR 1.111 (if this Office action is non-final) or a reply 
under 37 CFR 1 .1 13 (if this Office action is final); or, 

(2) request reinstatement of the appeal. 

if reinstatement of the appeal is requested, such request must be accompanied 
by a supplemental appeal brief, but no new amendments, affidavits (37 CFR 1 .130, 
1 .131 or 1 .132) or other evidence are permitted. See 37 CFR 1 .193(b)(2). 

A Supervisory Patent Examiner (SPE) has approved of reopening prosecution by 
signing below: 

/Nasser G Moazzami/ 

Supervisory Patent Examiner, Art Unit 2436. 

2. This action is responding to application papers filed on 12-4-2008. Claims 1,3- 
7, 9, 10, 16 - 27 are pending. Claims 2, 8, 11 - 15 have been cancelled. Claims 1, 
16, 17, 18 are independent. This application was filed on 7-1 1-2003. 



Response to Arguments 
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3. Applicant's arguments filed 12-4-2008 have been fully considered but they are moot 
due to new grounds of rejection. 

The Yasuda prior art discloses coupling of a separate hardware security device (an 
IC reader/writer) to a data processing computer system supplying credential information 
for each application of the plurality of applications, (see Yasuda col. 6, lines 5-1 1 : IC 
card reader/writer read as and writes data from/to an iC card; col 6, line 58 - col. 7, line 
31 : once matching information is received from the client; client requests a list of 
application names stored on IC card; when user selects one application name; client 
reads authentication information corresponding to selected application; if match OK, 
authentication information supplied to client; perform and complete authentication 
process) 

The Schaeck prior art discloses a view or display consisting of a plurality of 
applications or multiple applications, (see Schaeck paragraph [0043], lines 5-7; 
paragraph [0068], lines 4-8: view list of multiple or a plurality of accessible services or 
applications; paragraph [0044], lines 1-4: user actions, accessible by the user) 

The Delany prior art discloses a consolidated view for the set of available 
applications, (see Delany paragraph [0113], lines 13-18, paragraph [0129], lines 18-20: 
LDAP, consolidated user based directory information) 



4. 



Claim Rejections - 35 USC §112 
The previous 112 rejection has been withdrawn due to remarks. 
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Claim Rejections - 35 USC § 103 

5. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

6. Claims 1, 3 - 7, 9, 10, 21 -27 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Schaeck et al. (US PGPUB No. 20030163513) in view of Delany et 
al. (US PGPUB No. 20020138763) and further in view of Cotte (US PGPUB No. 

20040013132) and Yasuda et al. (US Patent No. 7,114,075). 

With Regards to Claim 1, Schaeck discloses a method for providing a system 
administrator with a view of a totality of application accessible by a user, comprising: 
b) identifying the plurality of applications (see Schaeck paragraph [0037], lines 1-5: 
service equivalent to application; paragraph [0066], lines 5-10: aggregation of 
services or applications) accessible by a user by examining the authentication 
credential container associated with the user; (see Schaeck paragraph [0066], 
lines 1-5, paragraph [0081], lines 1-11: examine user authentication credentials; 
paragraph [0022], lines 1-3: profile or credentials container) and 
d) a view of displayer to display the view of the plurality of applications accessible 
by the user to the administrator, (see Schaeck paragraph [0043], lines 5-7; 
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paragraph [0068], lines 4-8: view list of multiple or plurality of accessible services 
or applications; paragraph [0045], lines 7-12: role of administrator, view of 
application (i.e. services)) 

Schaeck discloses wherein generating a view of the plurality of applications 
accessible by the user, (see Schaeck paragraph [0043], lines 5-7; paragraph [0068], 
lines 4-8: view list of multiple or plurality of accessible services or applications; 
paragraph [0044], lines 1-4: user actions, accessible by the user) Schaeck does not 
specifically disclose a consolidated user directory. 
However, Delany discloses: 

c) a consolidated user directory that contains user authentication information across 
the plurality of applications, (see Delany paragraph [01 1 3], lines 1 3-1 8, 
paragraph [0129], lines 16-20: LDAP, consolidated user based directory 
information) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck to enable a consolidated directory of the plurality of the applications as 
taught by Delany. One of ordinary skill in the art would have been motivated to 
employ the teachings of Delany to enable, within a consolidated view or a single 
source, the addition and removal of directory entry attributes for an existing group, 
(see Delany paragraph [0014], lines 4-7: " ... Overtime, an administrator may 
discover that using a dynamic membership rule is a mistake for this group because 
the number of members is growing too fast. ... "; paragraph [0014], lines 10-14: "... 
since the group has already been created and used, prior systems do not allow for 
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the modification of the group by removing the attribute for storing a dynamic 
membership rule. ... ") 

Schaeck-Delany does not specifically disclose a complete listing of applications. 
However, Cotte discloses a complete listing of applications for: a); b); c); (see Cotte 
paragraph [0116], lines 1-7: total number of application possible) 

It would have been obvious to one of ordinary skill in the art to modify Schaeck- 
Delany for a complete listing of applications as taught by Cotte. One of ordinary skill 
in the art would have been motivated to employ the teachings of Cotte to realizing 
advantages, such as privacy, ease of use, and/or data communications capabilities, 
offered by available communications environments, (see Cotte paragraph [0022], 
lines 1-5: "... The present invention may be employed to overcomes disadvantages 
existing in known communications environments while realizing advantages, such as 
privacy, ease of use, and/or data communications capabilities, offered by available 
communications environments. ...") 

Schaeck discloses wherein credential information for each application that the user 
uses into an authentication credential container associated with the user, 
(see Schaeck paragraph [0066], Sines 5-10: aggregation of services or applications; 
paragraph [0066], lines 1-5, paragraph [0081], lines 1-11: examine user 
authentication credentials; paragraph [0022], lines 1-3: profile or credentials 
container) Schaeck-Delany-Cotte does not specifically disclose a separate 
hardware security device, (see Schaeck paragraph [0022], lines 1-3: profile or 
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credentials container, credential information) 

However, Yasuda discloses: 

a) receiving, in response to a coupling of a separate hardware security device to the 
data processing system, credential information for each application of the 
plurality of applications that the user uses from the separate hardware security 
device; (see Yasuda coi. 6, lines 5-1 1 : IC card reader/writer read as and writes 
data from/to an !C card; col 6, Sine 58 - col. 7, line 31 : once matching information 
is received from the client; client requests a list of application names stored on iC 
card; when user selects one application name; client reads the authentication 
information corresponding to selected application; if match OK, receives 
authentication information and supplies information to client; perform 
authentication process) 
It would have been obvious to one of ordinary skill in the art to modify Schaeck- 
Delany-Cotte for coupling a separate hardware security device, and credential 
information for each application as taught by Yasuda. One of ordinary skill in the art 
would have been motivated to employ the teachings of Yasuda for improving 
security of the authentication information in order to achieve a high level security. 
(Yasuda col 2, II 49-54: "... Therefore, in the present invention the apparatus does 
not directly access the storage medium to read authentication information of the 
applications, which improves security of the authentication information stored in the 
storage medium for achieving a high level security. ... ") 
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With Regards to Claim 3, Schaeck discloses the method of claims 1 , further 
comprising providing an interface to assist in removing access to an application from the 
plurality of the applications by utilizing the view of the plurality of the applications 
accessible by the user, (see Schaeck paragraph [0043], lines 5-7; paragraph [0068], 
lines 4-8: view list of multiple or plurality of accessible services or applications; 
paragraph [0043], lines 9-15: delete or remove access to a service or application) 

Schaeck does not specifically disclose a complete listing of applications. However, 
Cotte discloses a complete listing of applications, (see Cotte paragraph [0116], lines 1- 
7: total number of application possible) 

It would have been obvious to one of ordinary skill in the art to modify Schaeck for 
a complete listing of applications as taught by Cotte. One of ordinary skill in the art 
would have been motivated to employ the teachings of Cotte in order to enable the 
capability to realizing advantages, such as privacy, ease of use, and/or data 
communications capabilities, offered by available communications environments, (see 
Cotte paragraph [0022], lines 1-5) 

With Regards to Claim 4, Schaeck discloses the method of claim 1, further comprising: 
wherein the user utilizing the generated view, (see Schaeck paragraph [0043], lines 
5-7; paragraph [0068], lines 4-8: view list of multiple or plurality of accessible 
services or applications), and injecting authentication information of the user account 
into the authentication credential container of the user, (see Schaeck paragraph 
[0052], lines 11-15: script program utilizing in the processing of authentication 
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information, authentication information placed or "injected" within authentication 
process via script technology) Schaeck does not specifically disclose creating a 
user account for a new application to be accessible by the user. 
However, Delany discloses: 

a) creating a user account for a new application to be accessible by the user; (see 
Delany paragraph [0108], lines 1-8; paragraph [0109], lines 12-16: create user 
accounting information) and 

b) authentication information of the user account into the authentication credential 
container of the user, (see Delany paragraph [0108], lines 1-8; paragraph [0109], 
lines 12-16: create user accounting information) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck such that the authentication credential container is stored at a server as 
taught by Delany. One of ordinary skill in the art would have been motivated to 
employ the teachings of Delany to enable, within a consolidated view or a single 
source, the addition and removal of directory entry attributes for an existing group, 
(see Delany paragraph [0014], lines 4-7; paragraph [0014], lines 10-14) One of 
ordinary skill in the art would have been motivated to employ the teachings of 
Delany to enable, within a consolidated view or a single source, the addition and 
removal of directory entry attributes for an existing group. 



With Regards to Claim 5, Schaeck discloses the method of claim 4, wherein the 
authentication credential container and a server, (see Schaeck paragraph [0066], lines 
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1-5, paragraph [0081], lines 1-11: examine user authentication credentials; paragraph 
[0051], lines 1-6; paragraph [0075], lines 1-4: authentication server system; paragraph 
[0022], lines 1-3: profile or credentials container) Schaeck does not specifically disclose 
wherein the authentication credential container stored at a server. However, Delany 
discloses wherein authentication credential container is stored at a server, (see Delany 
paragraph [0128], lines 1-3; paragraph [0129], lines 1-4: database manager, profile or 
authentication information under control of directory server and database server) 
It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck such that the authentication credential container is stored at a server as taught 
by Delany. One of ordinary skill in the art would have been motivated to employ the 
teachings of Delany to enable, within a consolidated view or a single source, the 
addition and removal of directory entry attributes for an existing group, (see Delany 
paragraph [0014], lines 4-7; paragraph [0014], lines 10-14) 

With Regards to Claim 6, Schaeck discloses the method of claim 3, wherein the 
removing is performed automatically, (see Schaeck paragraph [0044], lines 1-10: data- 
oriented or presentation interface, data-oriented interface designates an automatic 
interface between client and server; paragraph [0043], lines 9-15: delete or remove 
access to a service or application) 

With Regards to Claim 7, Schaeck discloses the method of claim 4, wherein 
processing user account information is performed either automatically or manually by an 
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administrator, (see Schaeck paragraph [0044], lines 1-10: data-oriented or presentation 
interface, data-oriented interface designates an automatic interface) Schaeck does not 
specifically disclose the creation of a user account. However, Delany discloses wherein 
creating the user account, (see Delany paragraph [0108], lines 1-8; paragraph [0109], 
lines 12-16: create user accounting information) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck for the creation of a user account as taught by Delany. One of ordinary skill in 
the art would have been motivated to employ the teachings of Delany to enable, within a 
consolidated view or a single source, the addition and removal of directory entry 
attributes for an existing group, (see Delany paragraph [0014], lines 4-7; paragraph 
[0014], lines 10-14) 

With Regards to Claim 9, Schaeck discloses the method of claim 4, wherein the 
authentication information is injected into the separate hardware security device, (see 
Schaeck paragraph [0052], lines 11-15: script program utilizing in the processing of 
authentication information, authentication information placed or "injected" within 
authentication process via script technology) Schaeck does not specifically disclose 
creating a user account for a new application to be accessible by the user. However, 
Delany discloses wherein creating a user account, (see Delany paragraph [0108], lines 
1-8; paragraph [0109], lines 12-16: create user accounting information) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck to creating a user account as taught by Delany. One of ordinary skill in the art 
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would have been motivated to employ the teachings of Delany to enable, within a 
consolidated view or a single source, the addition and removal of directory entry 
attributes for an existing group, (see Delany paragraph [0014], lines 4-7; paragraph 
[0014], lines 10-14) 

With Regards to Claim 10, Schaeck discloses the method of claim 1 , further 
comprising user directories for each application of the plurality of the applications 
accessible by the user, (see Schaeck paragraph [0043], lines 5-7; paragraph [0068], 
lines 4-8: view list of multiple or plurality of accessible services or applications) 
Schaeck does not specifically disclose removing individual directories for each 
application. However, Delany disclose wherein removing individual user directories for 
each application, (see Delany paragraph [0108], lines 1-8; paragraph [0109], lines 12- 
16: delete or remove user accounting information or user directories) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck to enable removing individual user directories for each application as taught by 
Delany. One of ordinary skill in the art would have been motivated to employ the 
teachings of Delany to enable, within a single source or consolidate view, the addition 
and removal of user accounting and authentication attributes for an existing group using 
a centralized source, (see Delany paragraph [0014], lines 4-7; paragraph [0014], lines 
10-14) 
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With Regards to Claim 21, Schaeck discloses the method of claim 1 wherein a list of 
information employed by the user. Schaeck does not specifically disclose a list of key 
information. However, Delany discloses wherein the view comprises: information of 
keys employed by the user, wherein each entry in the list corresponds to a different key 
employed by the user, and wherein each entry identifies a type of the corresponding key 
and a serial number of the corresponding key. (see Delany paragraph [0361], lines 1- 
21: public/private key and certificate usage, certificate serial number; paragraph [0374], 
II 11-14: view certificate information (key information and serial number)) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck for key and certification information such as serial number as taught by 
Delany. One of ordinary skill in the art would have been motivated to employ the 
teachings of Delany in order to enable, within a single source or consolidate view, the 
addition and removal of user accounting and authentication attributes for an existing 
group using a centralized source, (see Delany paragraph [0014], lines 4-7; paragraph 
[0014], lines 10-14) 

With Regards to Claim 22, Schaeck discloses the method of claim 1 , wherein the view 
comprises: a profile of the user detailing a role of the user, a name of the user, contact 
information for the user, and employment information for the user, (see Schaeck 
paragraph [0108], lines 1-8; paragraph [0109], lines 12-16: process user profile 
information, account, role of user, administrator) 
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With Regards to Claim 23, Schaeck discloses the method of claim 1 , wherein the view 
comprises: a list of certificate-enabled applications accessible by the user, wherein each 
entry in the list corresponds to a different certificate-enabled application, and wherein 
each entry identifies a user name of the user and a last login attempt of the user for the 
corresponding certificate-enabled application, (see Schaeck paragraph [0043], lines 5-7; 
paragraph [0068], lines 4-8: view list of multiple or plurality of accessible services or 
applications (certificate enabled application is still an application and a service 
accessible by a user)) 

With Regards to Claim 24, Schaeck discloses the method of claim 1 , wherein the view 
comprises: a list of enterprise applications accessible by the user, wherein each entry in 
the list corresponds to a different enterprise application, and wherein each entry 
identifies a user name of the user for the corresponding enterprise application, (see 
Schaeck paragraph [0043], lines 5-7; paragraph [0068], lines 4-8: view list of multiple or 
plurality of accessible services or applications (enterprise application is still an 
application and a service accessible by a user)) Schaeck does not specifically disclose 
tracking a last login attempt of the user. However, Delany discloses wherein a last login 
attempt of the user for corresponding entries application, (see Delany paragraph 
[0428], lines 3-8; paragraph [0429], lines 4-7: authentication (login) attempts (successful 
and unsuccessful) are logged (tracked)) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck for last login attempt information as taught by Delany. One of ordinary skill in 
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the art would have been motivated to employ the teachings of Delany to enable, within a 
single source or consolidate view, the addition and removal of user accounting and 
authentication attributes for an existing group using a centralized source, (see Delany 
paragraph [0014], lines 4-7; paragraph [0014], lines 10-14) 

With Regards to Claim 25, Schaeck discloses the method of claim 1 , wherein the view 
comprises: a list of personal applications accessible by the user, wherein each entry in 
the list corresponds to a different personal application, and wherein each entry identifies 
a number of accounts connected to the corresponding personal application, (see 
Schaeck paragraph [0043], lines 5-7; paragraph [0068], lines 4-8: view list of multiple or 
plurality of accessible services or applications (personal application is still an 
application)) 

With Regards to Claim 26, Schaeck discloses the method of claim 22, wherein the 
view comprises: user selectable graphical user interface elements for invoking a 
function to update the profile and for invoking a function to reset the profile, (see 
Schaeck paragraph [0043], lines 13-15: add or update application list; paragraph [0044], 
lines 1-10: data-oriented or presentation or user interface, presentation interface 
designates a manual interactive interface; paragraph [0066], lines 5-10: modification 
(add, update) of user profile information) 
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With Regards to Claim 27, Schaeck discloses the method of claim 23, wherein the 
view comprises: a user selectable graphical user interface element for invoking a 
function to delete a user name of the user from the list of certificate-enabled 
applications, (see Schaeck paragraph [0043], lines 13-15: delete (user name) 
accounts; paragraph [0044], lines 1-10: data-oriented or presentation or user interface, 
presentation interface designates a manual interactive interface; paragraph [0066], lines 
5-10: deletion of user profile information) 

7. Claims 16, 17 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Schaeck-Cotte and further in view of Yasuda. 

With Regards to Claim 16, Schaeck discloses a method, in a data processing system, 
for providing a system administrator with a list of a plurality of applications accessible by 
a user, comprising: 

b) identifying the plurality of applications accessible by the user by examining an 
authentication credential container associated with the user; (see Schaeck 
paragraph [0043], lines 5-7; paragraph [0068], lines 4-8: view list of multiple or 
plurality of accessible services or applications; paragraph [0045], lines 7-12: role 
of administrator, view of application (i.e. services)) 

c) generating a list of the plurality of applications accessible by the user; (see 
Schaeck paragraph [0043], lines 5-7; paragraph [0068], lines 4-8: view list of 
multiple or plurality of accessible services or applications; paragraph [0045], lines 
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7-12: role of administrator, view of application (i.e. services)) and 
d) displaying the list to the administrator, (see Schaeck paragraph [0043], lines 5-7; 
paragraph [0068], lines 4-8: view list of multiple or plurality of accessible services 
or applications; paragraph [0045], lines 7-12: role of administrator, view of 
application (i.e. services)) 

Schaeck does not specifically disclose a complete listing of applications. However, 
Cotte discloses a complete listing of applications for: a); b); (see Cotte paragraph 
[0116], lines 1-7: total number of application possible) 

It would have been obvious to one of ordinary skill in the art to modify Schaeck 
for a complete listing of applications as taught by Cotte. One of ordinary skill in the 
art would have been motivated to employ the teachings of Cotte in order to enable 
the capability to realizing advantages, such as privacy, ease of use, and/or data 
communications capabilities, offered by available communications environments, 
(see Cotte paragraph [0022], lines 1-5) 

Schaeck discloses wherein credential information for each application that the user 
uses into an authentication, crede^ with the user , (see 

Schaeck paragraph [0066], lines 5-10: aggregation of services or applications; 
paragraph [0066], lines 1-5, paragraph [0081], lines 1-11: examine user 
authentication credentials; paragraph [0022], lines 1-3: profile or credentials 
container) Schaeck-Cotte does not specifically disclose a separate hardware 
security device, (see Schaeck paragraph [0022], lines 1-3: profile or credentials 
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container, credential information) 

However, Yasuda discloses: 

a) receiving, in response to a coupling of a separate hardware security device to the 
data processi ng svste m^credeMaU^ application of the 

plurality of applications that the user uses from the separate hardware security 
device : (see Yasuda coi. 6, iines 5-1 1 : iC card reader/writer read as and writes 
data from/to an !C card; coi. 6, line 58 - coi, 7, line 31 : once matching information 
is received from the client; client requests a list of application names stored on iC 
card; when user selects one application name; client reads the authentication 
information corresponding to selected application; if match OK, receives 
authentication information and supplies information to client; perform 
authentication process) 
It would have been obvious to one of ordinary skill in the art to modify Schaeck- 
Cotte for coupling a separate hardware security device, and credential information 
for each application as taught by Yasuda. One of ordinary skill in the art would 
have been motivated to employ the teachings of Yasuda for improving security of the 
authentication information in order to achieve a high level security. (Yasuda col 2, II 
49-54) 

With Regards to Claim 17, Schaeck discloses a method, in a data processing system, 
for providing a system administrator with a list of a plurality of applications accessible by 
a user together with any user names and passwords used in connection with those 
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applications, comprising: 

a) receiving, in response to a coupling of a separate hardware security device to the 
data processing system, credential information for each application of the 
plurality of applications that the user uses from the separate hardware security 
device into an authentication credential container associated with the user; (see 
Schaeck paragraph [0022], lines 1-3: profile or credentials container, credential 
information; no disclosure of a separate hardware device) 

b) identifying the plurality of applications accessible by the user and any user 
names and passwords used in connection with the plurality of applications by 
examining an authentication credential container associated with the user; (see 
Schaeck paragraph [0043], lines 5-7; paragraph [0068], lines 4-8: view list of 
multiple or plurality of accessible services or applications; paragraph [0045], lines 
7-12: role of administrator, view of application (i.e. services)); 

c) generating a list of the plurality of applications accessible by the user together 
with any user names and passwords used in connection with the plurality of 
applications; (see Schaeck paragraph [0043], lines 5-7; paragraph [0068], lines 
4-8: view list of multiple or plurality of accessible services or applications; 
paragraph [0045], lines 7-12: role of administrator, view of application (i.e. 
services)); and 

d) displaying the list to the administrator, (see Schaeck paragraph [0043], lines 5-7; 
paragraph [0068], lines 4-8: view list of multiple or plurality of accessible services 
or applications; paragraph [0045], lines 7-12: role of administrator, view of 
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application (i.e. services)) 

Schaeck does not specifically disclose a complete listing of applications. However, 
Cotte discloses a complete listing of applications for: a); b); (see Cotte paragraph 
[0116], lines 1-7: total number of application possible) 

It would have been obvious to one of ordinary skill in the art to modify Schaeck 
for a complete listing of applications as taught by Cotte. One of ordinary skill in the 
art would have been motivated to employ the teachings of Cotte to enable the 
capability to realizing advantages, such as privacy, ease of use, and/or data 
communications capabilities, offered by available communications environments, 
(see Cotte paragraph [0022], lines 1-5) 

Schaeck discloses wherein credentjaMnformMon for each application that the user 
uses, into an. auth (see 
Schaeck paragraph [0066], lines 5-10: aggregation of services or applications; 
paragraph [0066], lines 1-5, paragraph [0081], lines 1-11: examine user 
authentication credentials; paragraph [0022], lines 1-3: profile or credentials 
container) Schaeck-Cotte does not specifically disclose a separate hardware 
security device, (see Schaeck paragraph [0022], lines 1-3: profile or credentials 
container, credential information) 
However, Yasuda discloses: 

a) receiving, in response to a coupling of 8 separate hardware security device to the 
data processing system , credenti al Information for each application of the 
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plurality of applications that the user uses from the separate hardware security 
device : (see Yasuda col. 6, lines 5-1 1 : iC card reader/writer read as and writes 
data from/to an IC card; col, 6, line 58 - col. 7, line 31 : once matching information 
is received from the client; client requests a list of application names stored on IC 
card; when user selects one application name; client reads the authentication 
information corresponding to selected application; if match OK, client receives 
authentication information and supplies information to client; performs 
authentication process) 
It would have been obvious to one of ordinary skill in the art to modify Schaeck- 
Cotte for coupling a separate hardware security device, and credential information 
for each application as taught by Yasuda. One of ordinary skill in the art would 
have been motivated to employ the teachings of Yasuda for improving security of the 
authentication information in order to achieve a high level security. (Yasuda col 2, II 
49-54) 

8. Claims 18 - 20 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Schaeck-Delany and further in view of Cotte. 

With Regards to Claim 18, Schaeck discloses a method for providing a system 
administrator with a consolidated directory of a plurality of applications accessible by a 
user, the method comprising: 

a) identifying the plurality of applications accessible by the user by examining 
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authentication credential container of the user; (see Schaeck paragraph [0043], 
lines 5-7; paragraph [0068], lines 4-8: view list of multiple or plurality of 
accessible services or applications; paragraph [0045], lines 7-12: role of 
administrator, view of application (i.e. services)) 

b) generating a directory of the plurality of applications accessible by the user; (see 
Schaeck paragraph [0043], lines 5-7; paragraph [0068], lines 4-8: view list of 
multiple or plurality of accessible services or applications; paragraph [0045], lines 
7-12: role of administrator, view of application (i.e. services)); and 

c) displaying the directory to the administrator; ((see Schaeck paragraph [0043], 
lines 5-7; paragraph [0068], lines 4-8: view list of multiple or plurality of 
accessible services or applications; paragraph [0045], lines 7-12: role of 
administrator, view of application (i.e. services))) 

the directory comprising: 

d) a name of the user; (see Schaeck paragraph [0059], lines 16-24: userid (i.e. 
other credentials), password) 

f) a profile of the user detailing a role of the user, a name of the user, an email 
address of the user, a department of the user, an employee ID of the user, and 
any additional attributes of the user that have been specified; (see Schaeck 
paragraph [0108], lines 1-8; paragraph [0109], lines 12-16: process user profile 
information, account, role of user, administrator) 

k) a list of personal applications accessible by the user also specifying a number of 
accounts connected to each personal application; (see Schaeck paragraph 
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[0043], lines 5-7; paragraph [0068], lines 4-8: view list of multiple or plurality of 
accessible services or applications (personal application is still an application)) 

Schaeck does not specifically disclose a complete listing of applications. However, 
Cotte discloses a complete listing of applications for: a); b); (see Cotte paragraph 
[0116], lines 1-7: total number of application possible) 

It would have been obvious to one of ordinary skill in the art to modify Schaeck 
for a complete listing of applications as taught by Cotte. One of ordinary skill in the 
art would have been motivated to employ the teachings of Cotte in order to enable 
the capability to realizing advantages, such as privacy, ease of use, and/or data 
communications capabilities, offered by available communications environments, 
(see Cotte paragraph [0022], lines 1-5) 

Schaeck discloses: 

h) a list of certificate-enabled applications accessible by the user also specifying a 
user name of the user; (see Schaeck paragraph [0043], lines 5-7; paragraph 
[0068], lines 4-8: view list of multiple or plurality of accessible services or 
applications (certificate enabled application is still an application and a service 
accessible by a user)) 

j) a list of enterprise applications accessible by the user also specifying a user 
name of the user; (see Schaeck paragraph [0043], lines 5-7; paragraph [0068], 
lines 4-8: view list of multiple or plurality of accessible services or applications 
(enterprise application is still an application and a service accessible by a user)) 
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Schaeck-Cotte does not specifically disclose a list of key information and tracking a 
last login attempt of the user. However, Delany discloses wherein a last login 
attempt of the user for corresponding entries application, (see Delany paragraph 
[0428], lines 3-8; paragraph [0429], lines 4-7: authentication (login) attempts 
(successful and unsuccessful) are logged (tracked)) 

And, Delany discloses: 

e) a list of keys employed by the user also detailing the type and serial number of 
each key; (see Delany paragraph [0361], lines 1-21: public/private key and 
certificate usage, certificate serial number; paragraph [0374], II 11-14: view 
certificate information (key information and serial number)) 

g) a means of updating and resetting the profile; (see Delany paragraph [0108], 
lines 1-8; paragraph [0109], lines 12-16: update profile information) 

i) a means of deleting the user name of the user; (see Delany paragraph [01 08], 
lines 1-8; paragraph [0109], lines 12-16: remove user profile (i.e. account) 
information) 

It would have been obvious to one of ordinary skill in the art to have modified 
Schaeck-Cotte for key and certification information such as serial number, to enable 
a last login attempt, and the processing of user profile (i.e. user account) information 
as taught by Delany. One of ordinary skill in the art would have been motivated to 
employ the teachings of Delany in order to enable, within a single source or 
consolidate view, the addition and removal of user accounting and authentication 
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attributes for an existing group using a centralized source, (see Delany paragraph 
[0014], lines 4-7; paragraph [0014], lines 10-14) 

With Regards to Claim 19, Schaeck discloses the method of claim 18, further 
comprising: a specification of a password for each certificate enabled application, each 
enterprise application, and each personal application, (see Schaeck paragraph [0059], 
lines 16-24: password required for access to applications) 

With Regards to Claim 20, Schaeck discloses the consolidated directory of claim 18, 
further comprising: 

a) means for a system administrator to add one or more applications to the lists of 
the certificate enabled applications, the enterprise applications, or the personal 
applications of the user; (see Schaeck paragraph [0043], lines 13-15: add or 
update application list) and 

b) means for a system administrator to delete one or more applications from the 
lists of the certificate enabled applications, the enterprise applications, or the 
personal applications, (see Schaeck paragraph [0043], lines 13-15: delete 
accounts) 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Carlton V. Johnson whose telephone number is 571- 
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270-1032. The examiner can normally be reached on Monday thru Friday , 8:00 - 
5:00PM EST. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Nasser Moazzami can be reached on 571-272-4195. The fax phone 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Nasser G Moazzami/ Carlton V. Johnson 

Supervisory Patent Examiner, Art Unit 2436 Examiner 
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